> ## Documentation Index
> Fetch the complete documentation index at: https://stytch.com/docs/llms.txt
> Use this file to discover all available pages before exploring further.

# AI agents & Connected Apps

> Make your app agent-ready with OAuth 2.0, MCP server integration, and enterprise-grade security for AI interactions.

## Agent-ready authentication

As AI agents gain the ability to access applications, Stytch Connected Apps provides the infrastructure to securely authenticate and authorize agent interactions—without rebuilding your auth system.

* **OAuth 2.0 & OIDC compliant**: Turn your app into an authorization server that AI agents and third-party apps can securely connect to
* **MCP server ready**: Native support for the Model Context Protocol, enabling Claude, ChatGPT, and other AI agents to access your app's resources
* **Works with existing auth**: Add agent authentication to your current auth stack with no migration required
* **Granular consent management**: Users control exactly what data and actions agents can access, with org-level visibility for IT admins
* **Token lifecycle management**: Issue, validate, refresh, and revoke access tokens with full control over expiration and scopes
* **Enterprise controls**: Org-wide allowlists, audit logs, and one-click revocation for compliance and security teams

## Core capabilities

<Columns cols={3}>
  <Card title="Build an authorization server" icon="server" href="/connected-apps/build-login-flow/login-flow">
    Use Stytch's pre-built UI components or headless SDK to create an OAuth-compliant authorization endpoint.
  </Card>

  <Card title="MCP server integration" icon="cpu" href="/connected-apps/guides/mcp-servers-cloudflare">
    Connect AI agents to your app via the Model Context Protocol with dynamic registration and scoped access.
  </Card>

  <Card title="Custom OAuth scopes" icon="sliders-vertical" href="/connected-apps/oauth-learn-more/oauth-scopes">
    Define granular permissions based on real actions and resources in your app.
  </Card>

  <Card title="Client types" icon="key" href="/connected-apps/oauth-learn-more/client-types">
    Configure first-party, third-party, confidential, and public clients with appropriate security controls.
  </Card>

  <Card title="Token management" icon="ticket" href="/api-reference/b2b/api/connected-apps/methods/introspect-token">
    Issue access tokens, refresh tokens, and ID tokens with built-in validation and revocation.
  </Card>

  <Card title="Consent management" icon="user-check" href="/api-reference/b2b/api/connected-apps/consent-management/get-connected-apps-organization">
    View connected apps, authorized scopes, and revoke access at the user or organization level.
  </Card>
</Columns>

## Use cases

<Columns cols={2}>
  <Card title="MCP servers on Cloudflare" icon="cloud" href="/connected-apps/guides/mcp-servers-cloudflare">
    Deploy MCP servers on Cloudflare Workers with Stytch handling authentication and authorization.
  </Card>

  <Card title="MCP servers on Vercel" icon="triangle" href="/connected-apps/guides/mcp-servers-vercel">
    Build MCP servers on Vercel's edge runtime with secure token management.
  </Card>

  <Card title="CLI applications" icon="terminal" href="/connected-apps/build-custom-flow/public-apps">
    Authenticate command-line tools using the Authorization Code Flow with PKCE for public clients.
  </Card>

  <Card title="Third-party integrations" icon="puzzle" href="/connected-apps/oauth-learn-more/client-types">
    Allow external developers to build apps that integrate with your platform through OAuth.
  </Card>
</Columns>

## Start building

<Columns cols={2}>
  <Card title="Connected Apps overview" icon="rocket" href="/connected-apps/overview">
    Learn the fundamentals of OAuth, OIDC, and how Connected Apps works.
  </Card>

  <Card title="API reference" icon="book-open" href="/api-reference/b2b/api/connected-apps/exchange-authorization-code">
    Complete API documentation for token exchange, consent management, and client configuration.
  </Card>
</Columns>